Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:40019
HistoryApr 02, 2023 - 1:20 p.m.

Cross-Site Scripting (XSS)

2023-04-0213:20:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
rails
xss vulnerability
input sanitization
html elements
arbitrary javascript

0 Low

EPSS

Percentile

0.0%

rails is vulnerable to Cross-Site Scripting (XSS). The vulnerability is due to a lack of user-input sanitization in HTML elements, which allows an attacker to inject and execute arbitrary JavaScript into the browser.